DigiDomain Multiple Cross-Site Scripting Vulnerabilities

info
discussion
exploit
solution
references

DigiDomain Multiple Cross-Site Scripting Vulnerabilities

Attackers can exploit these issues by enticing an unsuspecting user to follow a malicious URI.

The following example URIs are available:

http://www.example.com/lookup/lookup_result.asp?domain=[XSS]&tld=.com
http://www.www.example.com/lookup/suggest_result.asp?domain=.com&tld=&user=&selecte=1&word1=[XSS]&word2=[XSS]